Filtered by vendor Tenda Subscriptions
Filtered by product Ax1803 Firmware Subscriptions
Total 50 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-37822 1 Tenda 2 Ax1803, Ax1803 Firmware 2024-11-21 7.8 High
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the function fromSetRouteStatic.
CVE-2022-37821 1 Tenda 2 Ax1803, Ax1803 Firmware 2024-11-21 7.8 High
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the ProvinceCode parameter in the function formSetProvince.
CVE-2022-37820 1 Tenda 2 Ax1803, Ax1803 Firmware 2024-11-21 7.8 High
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the ddnsEn parameter in the function formSetSysToolDDNS.
CVE-2022-37819 1 Tenda 2 Ax1803, Ax1803 Firmware 2024-11-21 7.8 High
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the timezone parameter in the function fromSetSysTime.
CVE-2022-37818 1 Tenda 2 Ax1803, Ax1803 Firmware 2024-11-21 7.8 High
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the list parameter at the function formSetQosBand.
CVE-2022-37817 1 Tenda 2 Ax1803, Ax1803 Firmware 2024-11-21 7.8 High
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the function fromSetIpMacBind.
CVE-2022-34596 1 Tenda 2 Ax1803, Ax1803 Firmware 2024-11-21 9.8 Critical
Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection vulnerability via the function WanParameterSetting.
CVE-2022-34595 1 Tenda 2 Ax1803, Ax1803 Firmware 2024-11-21 9.8 Critical
Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection vulnerability via the function setipv6status.
CVE-2022-30040 1 Tenda 2 Ax1803, Ax1803 Firmware 2024-11-21 7.5 High
Tenda AX1803 v1.0.0.1_2890 is vulnerable to Buffer Overflow. The vulnerability lies in rootfs_ In / goform / setsystimecfg of / bin / tdhttpd in ubif file system, attackers can access http://ip/goform/SetSysTimeCfg, and by setting the ntpserve parameter, the stack buffer overflow can be caused to achieve the effect of router denial of service.
CVE-2022-28572 1 Tenda 4 Ax1803, Ax1803 Firmware, Ax1806 and 1 more 2024-11-21 8.8 High
Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability in `SetIPv6Status` function